Sign up for our weekly security newsletter

GData – Malware Displays Bogus Firefox Security Alerts

GData Security has issued an alert that a new Trojan (if once entered user's system) can maneuver the addresses he enters in browser to divert him to a harmful website that shows a bogus Firefox security warning.

The phony security warning could be easily identified because of its typical wrong grammar and "Get security software" option. As per GData, anyone (who is deceived by the bogus alert and clicks the "Get security software" button) is taken to a site where "Personal Antivirus" software is offered for sale. This is a bogus antivirus software called scareware and it is designed to deceive user into believing that infection has penetrated into his system.

Ralf Benzmüller, Head of GData Security Labs, states that they have witnessed an explicit rise in forged antivirus solutions, as reported by COMPUTER SHOPPER on September 23, 2009.

As per other security experts, the thrust behind the forged messages is not security, but profit. Ralf also reveals that scareware has lately become the most profitable sources of making illegal money in the digital underground. The recent plot is deceitful as it displays Firefox security alerts. For criminals, the best is that victims buy worthless antivirus solution. However, it must be assumed that the criminals will use Trojan to disseminate infections and put stolen credit card details on sale.

GData security researchers informed that Firefox users should carefully examine any security alerts they get from their browsers because such alerts are not always point to a real danger.

Notwithstanding what the site claims to discover, users should not be lured to install "scareware." The best thing to do is to download a trustworthy virus scanner and re-scan the system.

Hackers sometimes maneuver the servers to send browsers to the website of their choice, even if the correct site URL is entered in the browser. Thus, it is a good idea to keep checking the address bar of browser. The experts suggested that it indicated what page the surfer had really visited.